Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-04 | CVE-2024-29976 | ** UNSUPPORTED WHEN ASSIGNED ** The improper privilege management vulnerability in the command “show_allsessions” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an authenticated attacker to obtain a logged-in administrator’s session information containing cookies on an affected device. | 6.5 |
| 2024-04-09 | CVE-2024-29052 | Improper Privilege Management vulnerability in Microsoft products Windows Storage Elevation of Privilege Vulnerability | 7.8 |
| 2024-03-21 | CVE-2023-47715 | Improper Privilege Management vulnerability in IBM Storage Protect Plus 10.1.0/10.1.16 IBM Storage Protect Plus Server 10.1.0 through 10.1.16 could allow an authenticated user with read-only permissions to add or delete entries from an existing HyperVisor configuration. | 4.3 |
| 2024-02-08 | CVE-2024-22795 | Improper Privilege Management vulnerability in Forescout Secureconnector 11.3.06.0063 Insecure Permissions vulnerability in Forescout SecureConnector v.11.3.06.0063 allows a local attacker to escalate privileges via the Recheck Compliance Status component. | 7.0 |
| 2024-02-08 | CVE-2024-23764 | Improper Privilege Management vulnerability in Withsecure products Certain WithSecure products allow Local Privilege Escalation. | 6.7 |
| 2024-02-06 | CVE-2024-22237 | Improper Privilege Management vulnerability in VMWare Aria Operations for Networks Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access to Aria Operations for Networks may exploit this vulnerability to escalate privileges to gain root access to the system. | 7.8 |
| 2024-02-06 | CVE-2024-22239 | Improper Privilege Management vulnerability in VMWare Aria Operations for Networks Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access to Aria Operations for Networks may exploit this vulnerability to escalate privileges to gain regular shell access. | 7.8 |
| 2024-02-06 | CVE-2023-32451 | Improper Privilege Management vulnerability in Dell Display Manager 2.0.0/2.1.0/2.1.1 Dell Display Manager application, version 2.1.1.17, contains a vulnerability that low privilege user can execute malicious code during installation and uninstallation | 7.8 |
| 2024-02-06 | CVE-2023-28049 | Improper Privilege Management vulnerability in Dell Command | Monitor 10.9 Dell Command | Monitor, versions prior to 10.9, contain an arbitrary folder deletion vulnerability. | 7.1 |
| 2024-02-03 | CVE-2023-31005 | Improper Privilege Management vulnerability in IBM products IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a local user to escalate their privileges due to an improper security configuration. | 7.8 |